Infosecurity News
NCSC: UK Facing “Enduring and Significant” Cyber-Threat
Critical infrastructure providers under pressure from state-backed groups
Information-Stealing Malware Escalates in Online Gaming
A report by Sekoia.io shed light on a targeted campaign using Discord and fake download websites
Python Malware Poses DDoS Threat Via Docker API Misconfiguration
Cado Security Labs said the bot agent exhibited various methods for conducting DDoS attacks
EU Formalizes Cybersecurity Support For Ukraine
Bloc signs working arrangement with war-torn country
Malaysian Police Dismantle “BulletProftLink” Phishing Operation
Several arrested and servers seized
Cyber-Attack Could Have “Devastating” Impact on Aussie Exports
Port operator struggles to recover from serious incident
MPs Dangerously Uninformed About Facial Recognition – Report
Privacy International warns UK is “sleepwalking into public mass surveillance”
MOVEit Gang Targets SysAid Customers With Zero-Day Attacks
Lace Tempest looks to spread Clop malware to victims
ICBC and Allen & Overy Hit By Ransomware
Multinationals believed to have been targeted by LockBit
Signature Techniques of Asian APT Groups Revealed
Kaspersky said the primary focus of these actors is cyber-espionage and information gathering
New Kamran Spyware Targets Urdu-Speaking Users in Pakistan
ESET said the attack affects Android users accessing the Urdu version of the Hunza News website
Iran-Affiliated Group Targets Israeli Firms Amid Israel-Hamas Conflict
CrowdStrike has attributed recent attacks on Israeli organizations in the transportation, logistics, and technology sectors to Iran-affiliated threat actor Imperial Kitten
Quishing Campaigns Spike 50% in September
QR code phishing is becoming increasingly popular
OpenAI Reveals ChatGPT Is Being DDoS-ed
Periodic outages began on November 8
UK Shoppers Lost Nearly £11m to Fraud Last Festive Season
NCSC warns of AI-generated scams in run-up to Christmas
Russian APT Sandworm Disrupted Power in Ukraine Using Novel OT Techniques
This previously undocumented attack suggests a growing maturity of Russia’s offensive OT arsenal
Microsoft Warns of Election Threats in 2024
To address these challenges, Microsoft is introducing several initiatives
Predator AI ChatGPT Integration Poses Risk to Cloud Services
This integration reduces reliance on OpenAI’s API while streamlining the tool’s functionality
FBI Warns of Emerging Ransomware Initial Access Techniques
The FBI notification advises how to protect against the growing targeting of third-party vendors and services
EU Rules for Digital Identities and Trust Services Face Backlash
A proposed amendment of eIDAS could “weaken the security of the Internet as a whole”, said a letter signed by over 500 individuals and organizations